Distributed Real-time Architecture for Mixed Criticality Systems XtratuM support of enhanced hypervisor layer services: description and interfaces D 2.3.1 Grant Agreement Project Acronym DREAMS FP7-ICT-2013.3.4-610640 Number Document Version 1.0 Date 31.03.2015 Deliverable No. 2.3.1 Contact Person Javier O. Coronel Organisation FENTISS Phone +34 963294704 E-Mail [email protected] Contributors Name Partner Javier Coronel FENTISS Alfons Crespo UPV Miguel Masmano FENTISS Vicent Brocal FENTISS Table of Contents Contributors ............................................................................................................................................ 2 Abstract ................................................................................................................................................... 6 Terms, definitions and abbreviated Terms ............................................................................................. 7 1 Introduction ..................................................................................................................................... 9 1.1 Structure of the deliverable .................................................................................................... 9 1.2 Relationship to other DREAMS Deliverables ........................................................................... 9 2 Virtualization Overview ................................................................................................................. 10 2.1 Virtualization layer ................................................................................................................ 11 2.1.1 Full virtualization ........................................................................................................... 12 2.1.2 Para-virtualization ......................................................................................................... 13 2.1.3 Hybrid Virtualization ...................................................................................................... 13 2.2 I/O Virtualization ................................................................................................................... 13 2.2.1 IOMMU Virtualization ................................................................................................... 13 2.2.2 Device and I/O Virtualization ........................................................................................ 14 2.3 Guest Operating System ........................................................................................................ 14 3 XtratuM hypervisor overview ........................................................................................................ 16 3.1 Basic properties ..................................................................................................................... 17 4 XtratuM – Software design overview ............................................................................................ 19 4.1 Software static architecture .................................................................................................. 19 4.1.1 System deployment ....................................................................................................... 19 4.1.2 System components ...................................................................................................... 20 4.1.3 System states ................................................................................................................. 23 4.2 Partition overview ................................................................................................................. 23 4.2.1 Partition operation ........................................................................................................ 24 4.2.2 Types of partitions ......................................................................................................... 24 4.2.3 Names and identifiers ................................................................................................... 24 4.3 Partition scheduling ............................................................................................................... 25 4.3.1 Multiple scheduling plans .............................................................................................. 25 4.4 Inter-Partition communications (IPC) .................................................................................... 26 4.5 Health Monitor (HM) ............................................................................................................. 27 4.6 Inter-Partition Virtual Interrupts (IPVI) ................................................................................. 28 4.7 Interfaces context required by XtratuM ............................................................................... 29 4.8 Interfaces context provided by XtratuM ............................................................................... 29 4.8.1 Hypercalls ...................................................................................................................... 29 4.8.2 Binary interfaces ............................................................................................................ 31 4.8.4 Partition control table (PCT) .......................................................................................... 32 4.8.5 Virtual Interrupts ........................................................................................................... 33 4.8.6 Fault management model ............................................................................................. 36 4.8.7 Partition image header .................................................................................................. 37 5 Booting process ............................................................................................................................. 39 5.1 Hypervisor boot ..................................................................................................................... 39 5.2 Partition boot ........................................................................................................................ 40 6 System configuration ..................................................................................................................... 41 6.1 XtratuM subjects, objects and privileges .............................................................................. 41 6.1.1 Subject identification ..................................................................................................... 41 6.1.2 Exported resource identification ................................................................................... 42 6.1.3 Exported resource access mechanism .......................................................................... 43 6.1.4 Operations on exported resources ................................................................................ 43 6.1.5 Partitions and the Partitioned Information Flow Policy (PIFP) ..................................... 44 6.1.6 Access matrices ............................................................................................................. 44 6.1.7 Subject temporal allocation .......................................................................................... 47 6.1.8 Subject memory areas allocation .................................................................................. 47 6.1.9 Subjects and virtualized exported resources ................................................................ 47 6.1.10 IPC exported resources.................................................................................................. 48 6.1.11 Devices exported resources .......................................................................................... 48 6.2 Configuration file specification ............................................................................................. 48 6.2.1 Element HwDescription ................................................................................................. 51 6.2.2 Element XMHypervisor .................................................................................................. 57 6.2.3 Element ResidentSw ...................................................................................................... 59 6.2.4 Element PartitionTable .................................................................................................. 61 6.2.5 Element Channels .......................................................................................................... 64 6.2.6 Basic types ..................................................................................................................... 65 7 Secure State and Secure Operations ............................................................................................. 73 7.1 Secure State ........................................................................................................................... 73 7.2 Insecure state ........................................................................................................................ 74 7.3 Trustability enforcement ....................................................................................................... 74 7.4 Test for secure states ............................................................................................................ 75 7.4.1 Abstract machine test (AMT)........................................................................................